Every CVE whose affected-product data names Taphome Core Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2023-2759 — CVSS 8.8 (high): A hidden API exists in TapHome's core platform before version 2023.2 that allows an authenticated, low privileged user to change passwords…
CVE-2023-2760 — CVSS 7.6 (high): An SQL injection vulnerability exists in TapHome core HandleMessageUpdateDevicePropertiesRequest function before version 2023.2, allowing…